Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-22 | CVE-2021-35206 | Open Redirect vulnerability in Gitpod Gitpod before 0.6.0 allows unvalidated redirects. | 6.1 |
| 2021-06-11 | CVE-2021-22903 | Open Redirect vulnerability in Rubyonrails Rails The actionpack ruby gem before 6.1.3.2 suffers from a possible open redirect vulnerability. | 6.1 |
| 2021-06-11 | CVE-2021-23393 | Open Redirect vulnerability in Flask Unchained Project Flask Unchained This affects the package Flask-Unchained before 0.9.0. | 5.4 |
| 2021-06-07 | CVE-2020-18268 | Open Redirect vulnerability in Zblogcn Z-Blogphp Open Redirect in Z-BlogPHP v1.5.2 and earlier allows remote attackers to obtain sensitive information via the "redirect" parameter in the component "zb_system/cmd.php." | 6.1 |
| 2021-06-04 | CVE-2021-31252 | Open Redirect vulnerability in Chiyu-Tech products An open redirect vulnerability exists in BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, and SEMAC devices from CHIYU Technology that can be exploited by sending a link that has a specially crafted URL to convince the user to click on it. | 6.1 |
| 2021-05-24 | CVE-2021-23387 | Open Redirect vulnerability in Trailing-Slash Project Trailing-Slash 1.0.0/2.0.0 The package trailing-slash before 2.0.1 are vulnerable to Open Redirect via the use of trailing double slashes in the URL when accessing the vulnerable endpoint (such as https://example.com//attacker.example/). | 6.1 |
| 2021-05-19 | CVE-2020-36365 | Open Redirect vulnerability in Smartstore Smartstorenet Smartstore (aka SmartStoreNET) before 4.1.0 allows CommonController.ClearCache, ClearDatabaseCache, RestartApplication, and ScheduleTaskController.Edit open redirect. | 6.1 |
| 2021-05-17 | CVE-2021-23384 | Open Redirect vulnerability in Koa-Remove-Trailing-Slashes Project Koa-Remove-Trailing-Slashes 1.0.0/2.0.0/2.0.1 The package koa-remove-trailing-slashes before 2.0.2 are vulnerable to Open Redirect via the use of trailing double slashes in the URL when accessing the vulnerable endpoint (such as https://example.com//attacker.example/). | 5.4 |
| 2021-05-11 | CVE-2021-27612 | Open Redirect vulnerability in SAP GUI for Windows 7.60/7.70 In specific situations SAP GUI for Windows until and including 7.60 PL9, 7.70 PL0, forwards a user to specific malicious website which could contain malware or might lead to phishing attacks to steal credentials of the victim. | 6.1 |
| 2021-05-05 | CVE-2020-13662 | Open Redirect vulnerability in Drupal Open Redirect vulnerability in Drupal Core allows a user to be tricked into visiting a specially crafted link which would redirect them to an arbitrary external URL. | 6.1 |